android_device_asus_flo

Piteball/android_device_asus_flo

Fork 0

mirror of https://github.com/followmsi/android_device_asus_flo.git synced 2024-11-06 21:56:05 +00:00

Commit graph

Author	SHA1	Message	Date
Jeff Vander Stoep	165b4ae091	Enforce ioctl command whitelisting on all sockets Remove the ioctl permission for most socket types. For others, such as tcp/udp/rawip/unix_dgram/unix_stream set a default unprivileged whitelist that individual domains may extend (except where neverallowed like untrusted_app). Enforce via a neverallowxperm rule. Change-Id: I7573fdb24f9c53ad169bce2aeab1baac8b2a11ea	2017-09-20 20:56:43 +00:00

Author

SHA1

Message

Date

Jeff Vander Stoep

165b4ae091

Enforce ioctl command whitelisting on all sockets

Remove the ioctl permission for most socket types. For others, such as
tcp/udp/rawip/unix_dgram/unix_stream set a default unprivileged whitelist
that individual domains may extend (except where neverallowed like
untrusted_app). Enforce via a neverallowxperm rule.

Change-Id: I7573fdb24f9c53ad169bce2aeab1baac8b2a11ea

2017-09-20 20:56:43 +00:00

1 commit